Vulnerabilities > Wesnoth > Wesnoth > 1.2.5
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-03-12 | CVE-2009-0878 | Resource Management Errors vulnerability in Wesnoth The read_game_map function in src/terrain_translation.cpp in Wesnoth before r32987 allows remote attackers to cause a denial of service (memory consumption and daemon hang) via a map with a large (1) width or (2) height. | 5.0 |
2009-03-12 | CVE-2009-0366 | Resource Management Errors vulnerability in Wesnoth The uncompress_buffer function in src/server/simple_wml.cpp in Wesnoth before r33069 allows remote attackers to cause a denial of service via a large compressed WML document. | 4.3 |
2007-12-01 | CVE-2007-6201 | Remote Denial of Service vulnerability in Battle for Wesnoth turn_cmd Unspecified vulnerability in Wesnoth 1.2.x before 1.2.8, and 1.3.x before 1.3.12, allows attackers to cause a denial of service (hang) via a "faulty add-on" and possibly execute other commands via unknown vectors related to the turn_cmd option. | 7.5 |
2007-12-01 | CVE-2007-5742 | Path Traversal vulnerability in Wesnoth Directory traversal vulnerability in the WML engine preprocessor for Wesnoth 1.2.x before 1.2.8, and 1.3.x before 1.3.12, allows remote attackers to read arbitrary files via ".." sequences in unknown vectors. | 9.0 |
2007-10-11 | CVE-2007-3917 | USE of Externally-Controlled Format String vulnerability in Wesnoth The multiplayer engine in Wesnoth 1.2.x before 1.2.7 and 1.3.x before 1.3.9 allows remote servers to cause a denial of service (crash) via a long message with multibyte characters that can produce an invalid UTF-8 string after it is truncated, which triggers an uncaught exception, involving the truncate_message function in server/server.cpp. | 7.8 |